cross-posted from: https://lemmy.zip/post/60717930
Canadian business process outsourcing giant Telus Digital has confirmed it suffered a security incident after threat actors claimed to have stolen nearly 1 petabyte of data from the company in a multi-month breach.
In all, ShinyHunters claims to have stolen close to 1 petabyte of data belonging to the company and many of its customers, many of whom use Telus Digital as a BPO provider for customer support operations. BleepingComputer has not been able to independently confirm the total size of the stolen data.
The threat actor shared the names of 28 well-known companies allegedly impacted by the breach. However, BleepingComputer will not disclose the names of these companies, as we have been unable to independently confirm whether they were impacted.
The threat actor says that much of the data for these customers relates to BPO services provided by Telus Digital, including customer support and call center outsourcing, agent performance ratings, AI-powered customer support tools, fraud detection and prevention, and content moderation solutions.
I believe Telus also handles healthcare data for Alberta and beyond. Do we know if that’s impacted?
Parts of health data for BC and Alberta. Not an insignificant amount, but only a small view on BC HIPA data, not sure on AB, but I imagine the scope would be similar. They do have a relative stranglehold on home health mgmt software. Telus’s relatively new foray into infosec has (rightfully) given health orgs pause in tendering and bids.
I know this because I carried out an app security audit for a BC health authority.
I was wondering the same. It’s Telus Health that deals with that crap, not sure if that’s separate from Telus Digital.
How do you not notice a petabyte of surprise egress?
What I want to know is where the fuck the hackers put a petabyte of stolen data.
I’ve worked with a ton of rack storage servers that handle like 45 disks. Even using older tech like 12-16TB drives you can get half a petabyte of usable space on one server even with raid array redundancies, etc.
Before the stupid AI hardware craze, these old enterprise servers were super cheap too, the main cost of running them was the power lol.
I know, but that’s still some serious hardware. Suggests state level backing or similar.
Eh, I have about 96tb of storage at home but a lot of it is backups, the actual data it holds is ~20tb. There are loads of homelabs bigger than my 2 server setup.
If you don’t monitor anything
Telus Stock: I’m in trouble!
That’s the good part about government granted monopolies. What can happen?
